CN102812773B - The method and apparatus accessed for local network - Google Patents

The method and apparatus accessed for local network Download PDF

Info

Publication number
CN102812773B
CN102812773B CN201180015395.7A CN201180015395A CN102812773B CN 102812773 B CN102812773 B CN 102812773B CN 201180015395 A CN201180015395 A CN 201180015395A CN 102812773 B CN102812773 B CN 102812773B
Authority
CN
China
Prior art keywords
home network
registration
access
network
uid
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201180015395.7A
Other languages
Chinese (zh)
Other versions
CN102812773A (en
Inventor
M·J·布雷姆
C·F·亚当斯
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Alcatel Optical Networks Israel Ltd
Original Assignee
Alcatel Optical Networks Israel Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Alcatel Optical Networks Israel Ltd filed Critical Alcatel Optical Networks Israel Ltd
Publication of CN102812773A publication Critical patent/CN102812773A/en
Application granted granted Critical
Publication of CN102812773B publication Critical patent/CN102812773B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W80/00Wireless network protocols or protocol adaptations to wireless operation
    • H04W80/04Network layer protocols, e.g. mobile IP [Internet Protocol]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W28/00Network traffic management; Network resource management
    • H04W28/16Central resource management; Negotiation of resources or communication parameters, e.g. negotiating bandwidth or QoS [Quality of Service]

Abstract

A kind of method for home network being expanded to mobile device.FA (Foreign Agent) in mobile device is preferably registered by the static UID (unique identifier) of exchange and certificate HA (local agent) in home network.HA creates the address for FA, and safeguards the registration table for listing all FA of registration.Major part situation in, when FA not remote carry out the assembly operating and being directly connected to home network time, perform FA registration.HA registers to SG (SGW) in a secure manner and waits the request for accessing home network.After registering to SG, HA initiates the heartbeat message confirmed by SG.When receiving FA access request from SG, HA, before license or refusal access, determines whether this FA limits to HA registration and the most available access.

Description

The method and apparatus accessed for local network
Cross-Reference to Related Applications
It relates to and require " Extending that submit, entitled on March 23rd, 2010 The In-Home Layer 2Network " U.S. Provisional Patent Application Serial No. 61/316,553 Priority, by the way of reference, the complete content of this application is expressly incorporated herein.
Technical field
Present invention relates generally to communication network field, and more particularly to being easy to order Family remotely accesses the method and apparatus of the communication network in family.
Background technology
Introductory information will be provided now.However, it is noted that have herein been described as existing or can Device, technology or the scheme of row is merely possible to provide for the background describing the present invention, And therefore it is not intended to recognize that they are the most by commercialization or by except inventor Outside other people know.
Therefore the abbreviation of selection is defined, in prior art and the following description of the present invention at least Relate to some of which.
ASIC special IC
CAC Call Admission Control
CRL certificate revocation list
DHCP DHCP
DSL DSL
DVR digital video recorder
HA local agent
FR Foreign Agent
IEEE institute of electrical and electronic engineers
IP Internet Protocol
ISP ISP
NAT network address translation
OS operating system
OSS operations support systems
PC personal computer
PKI PKIX
PS proxy server
RG home gateway
SG SGW
QoS service quality
Tcp transmission control protocol
UID unique identifier
Consumer electronics improve huge in the last few years.They are not only higher than not long ago ability, And they are the most popular.Many families have the most multiple personal computer and video storage sets Standby, and much similar equipment.These equipment are commonly connected together to form network, And can be communicated with other equipment outside family by this network.Can be obtained by this network Email and the use of telephone service be the most universal, and such as software application and The download of multimedia transmission is just becoming more frequent.
Home network is useful to user in many aspects.Even if there be no outside family other The connection of people, home network allows also to user such as from being not directly connected to computer used Printer prints.Can obtain or another equipment in family sends file, as Document, picture and video.Modern data memory cell can keep a large amount of audio or video number According to, and this network allows to obtain this content and broadcasting in the arbitrary equipment be connected to this network Put this content.Multiple users can participate in game by network.
Generally set by as to the some type of of interface providing any network service accessed The standby connection promoted outside family.This equipment can take such as to be connected to by multiple computers because of The router of special net or reception video and TV programme are to show at TV or other videos The form of the Set Top Box of display on equipment.Even if not being that great majority also have many home networks to be connected Receiving access network, wherein access network provides link between the family and core net of subscriber, wherein This core net can process mass communication business and provide gateway to be used for by other networks to enter Row communication.
When home network is connected to access network, it is allowed to such as Email and the Internet access Communication;Can be with foradownloaded video and audio content.It addition, nearest technological progress made can To upload or to be sent to from home network the data volume increase of other equipment through access network.? In certain situation, for example, at least from user, can download close to film or other videos Speed sends this film or other videos to other people.
This is highly beneficial for the user of mobile device.As used herein, mobile device is The equipment of radio communication access to mobile network can be used.Mobile device is due to their mobility And it is very popular;User can carry with this equipment easily and can connect mobile network The use Anywhere of network it.Mobile network provider has contracted thousands of subscriber and setting up Cover the network of vast geographic area.In many positions, if subscriber can not access them certainly Oneself network, then they can use another network as visitor.The usual base of mobile network In cell system, wherein mobile device communicates with neighbouring base station, and handoff protocol allows him To move to another community from a community (base station) ongoing without substantially interrupting Communication session.
Mobile subscriber in Jia can may such as use the short-range wireless protocol such as bluetooth Access content and the equipment of the part as home network.But this connects when user stays out It is disabled for entering, but can access this content in other modes some.Such as, can be via family The content of front yard network insertion may not be actually stored there, and is stored in by supplier In the remote memory storage devices safeguarded.In other cases, content can be stored in home network In network, but be to provide for the purpose of mobile access and to this content at the server of supplier Carry out replicating or mirror image.In any case, user can be used and be led to by mobile network The mobile device of letter, accesses the content stored by supplier.
But this strategy has the disadvantage in that.One, the on-site storage of supplier may cause safety Problem.It addition, supplier may be to service charge, and if there is their service fail Then they are in the risk sometimes become unavailable.Finally, user currently want and A large amount of contents that plan needs may make this option more infeasible in future.
Home network can also be directly accessed by the mobile network using such as MobileIP agreement. In the configuration, it is contemplated that mobile device embody Foreign Agent (FA), this Foreign Agent with by group The local agent (HA) becoming an equipment in the equipment of home network to embody sets up communication meeting Words.Although which solving some shortcomings relevant with third-party vendor, but yet suffer from several Point deficiency.
First, in order to communicate with FA, HA obtains IP address.But in common practice, Dynamically allocate this IP address, it means that this address is not permanent allocation but final Another user can be reassigned to.Certainly, HA can ask another IP address, but It is when distribution Shi GaiIP address, IP address is almost affirmed different from former IP address.Although it is dynamic The strategy of state distribution IP address has been saved IP address and has reduced the quantity of final needs, but It is that it may interrupt the route between FA and HA, and mobile device is difficult to its phase The HA registration answered.
It addition, home network uses residential gateway continually, wherein, this HA is allocated privately owned IP address and being positioned at after NAT border.This can also contribute to save IP address, but can FA can be made to be difficult to contact HA and set up the secure tunnel for communication.
In the face of these difficulties, one is needed to be easy to from remote mobile station secure accessing to home network Mode.Therefore, already and will need to solve with the FA that is embodied in mobile device and Communicate relevant aforesaid drawbacks and other shortcomings between HA in home network.The present invention is full These needs of foot and other needs.
Summary of the invention
The present invention relates to a kind of be easy to the method that mobile device is linked into home network.A side Face, the present invention be one be to include that the mobile device of FA (Foreign Agent) provides to include HA The method remotely accessed of the home network of (local agent), including: obtain in this HA UID (unique identifier), registers this HA to SG (SGW), and from this HA Heart beating is initiated to this SG.In a preferred embodiment, this HA receives for every from this SG The confirmation message of individual sent heartbeat message.Without receiving confirmation message, then possibility must The registration of this SG must be re-executed.
This HA UID can generate in this HA self, or can by another element to HA provides, such as, provided during HA registers by SG or provided by equipment manager.Should Method can also include preferably when FA is connected to its of this home network or this home network In an equipment time to HA register.In this aspect, to this HA registration FA can include to This HA transmits FA UID, transmits this HA UID to this FA, and retains in this HA Address for this FA.It can also include transmitting FA certificate to this HA, and to this FA transmits HA certificate.
The method can also include receiving FA access request from SG, it is determined whether to this HA Have registered this FA, and if do not register this FA to this HA, refuse this access request.As Fruit have registered this FA to this HA, then the method can also include permitting immediately to access, or Person limits if there is any access or bandwidth, first determines which accesses or bandwidth restriction can It is applied to this FA or can be applicable to the transmission to and from this home network.
In yet another aspect, the present invention is a kind of local agent used in home network, bag Include: processor;This processor is accessible to store data and the memory devices of programmed instruction; For safeguarding the SG Register of the registration of available SG;For generating after registering to SG The heartbeat message maker of heartbeat message;And it is allowed to access this home network for safeguarding The FA Register of the registration of FA.
A part for the additional aspect of the present invention by detailed description below, accompanying drawing and is arbitrarily weighed Profit illustrates in requiring, and a part will draw from this detailed description or can pass through this The learning by doing of invention arrives.It is appreciated that overall description above with detailed description below is all Exemplary, and be merely exemplary rather than restriction for disclosed invention.
Accompanying drawing explanation
When combining accompanying drawing with reference to detailed description below, it is possible to obtain for the present invention more Complete understanding, wherein:
Fig. 1 shows the selected assembly of the home network according to an embodiment of the invention Rough schematic view;
Fig. 2 shows the selected assembly of the communication network according to an embodiment of the invention Rough schematic view;
Fig. 3 shows the flow chart of the method according to an embodiment of the invention;
Fig. 4 shows the flow chart of the method according to an embodiment of the invention;
Fig. 5 shows the flow chart of the method according to an embodiment of the invention;And
Fig. 6 shows the letter of the selected assembly of the HA according to an embodiment of the invention Change schematic diagram.
Detailed description of the invention
The present invention relates to a kind of mode that home network is expanded to remote-moving apparatus, and work as It is implemented in and is subject to Dynamic link library point and the NAT (network of the Internet with communicating of home network Address is changed) in the environment of the restriction on border time advantageous particularly.Fig. 1 shows according to this The rough schematic view of the selected assembly of the home network 100 of a bright embodiment.It should be noted that Home network is because used assembly by so address and is suitable to be obtained by subscriber and be in Middle use, but identical system can similarly easy be installed to such as small enterprise, school Or in church's office environment.For convenience's sake, this network will be referred to as home network, and No matter whether it is installed in the house of single subscriber or in another position.
Each assembly of home network can the most at home (or other install Position) communication, but the most this situation.Communication with external equipment is typically Found a family one of reason of network.In the embodiment of figure 1, home network 100 includes RG (residential gateway) 105.RG 105 is easy to home network 100 and (not shown in Fig. 1) Communicate between access network.This access network then provides core communication network and arrives it subsequently His network and pipeline of equipment (see such as Fig. 2).
In the embodiment of figure 1, RG 105 is also used as router to receive from outward The communication in portion, and send them to the various assemblies of network 100.In this embodiment, These assemblies include PC 110 and related media storage device 115.By home network 100 Also can obtain as by the telephone service represented by phone 140.Set Top Box 120 is also home network The part of 100, and be associated with DVR 125.In this embodiment, network 100 Also include phone 130 and kneetop computer 135.As shown in Figure 1, by cable by network 100 Many assemblies be connected to RG 105, and kneetop computer 135 uses wave point.Certainly, This concrete combination (although the rarest) of assembly is exemplary, and can be to other families Network is configured differently.
According to the present invention, home network 100 also includes HA (local agent) 150, and it has The multiple functions being described herein.HA 150 is typically implemented as performing as software The concurrent physical processor of the instruction being stored in non-state medium.In other embodiments, may be used HA to be embodied as the combination that can perform software with the hardware of such as ASIC.HA can be Independent equipment or merge with the multi-function device also performing other tasks.Realize at some In, it such as can be realized in RG 105 or PC 110.
According to this embodiment of the present invention, HA 150 obtains the UID that can be used for communication session (unique identifier), this communication session relates to the FA being authorized to access this home network.Can To carry out this acquisition with various ways;In one embodiment, HA such as uses processor Serial number simply generate the UID of its own.In another embodiment, HA uses UID in OS (operating system).In any one situation, UID obtains scheme should be true Protect the uniqueness of this UID.Can also by another element generate UID, for example, it is possible to SG (SGW;See the example of Fig. 2) registration time distribution UID.If by another yuan Part generates, then it preferably should be stored in accessible storage by HA in an encrypted form In device equipment.
Fig. 2 shows the selected of the communication network 200 according to an embodiment of the invention The rough schematic view of assembly.It should be noted that communication network 200 actual include multiple network (or More precisely, the assembly in those networks, without individually showing those assemblies).Remove Outside further depict HA 150 in fig. 2 such as RG 105, home network 100 shown For such as cloud (but having carried out more detailed display in FIG).RG 105 is by home network Network 100 is connected to access network 210.Access network can e.g. PSTN or PON (passive light Network) in DSL realize.Access network 210 provides the connection of core net 220 then. Typically, core net 220 be for include home network 100 multiple different entities it Between via access network 210 route communication Large Copacity packet data network.
In this embodiment, core net 220 such as communicates with the Internet 240, to home network Network 100 provides the Internet to access.It is also possible to there are one or more nets that seam uses Pass equipment, but for simplicity, the most individually show these assemblies.But Individually show SGW (SG) 225 and proxy server (PS) 230.These equipment In each (or both) can be the software performed on single physical unit, or can To use multiple physical equipments of collaborative work to realize.It is described below according to this of the present invention The operation of a little assemblies.
In the embodiment of Fig. 2, core net 220 is further attached to mobile network 250.Move Dynamic network 250 typically comprises the most scattered a large amount of base station, and each base station has its own Antenna in case with the mobile device communication in their local zone.Retouch for illustrative purposes Paint antenna/base station 255.Antenna/base station 255 can include such as eNodeB.Also show Mobile device 260, and mobile device 260 can be carried out and the channel radio of antenna/base station 255 Letter is to set up communication session by mobile network 250.Although only show one, but mobile Network generally includes a large amount of antenna/base station, and application is used for communicating when mobile device migrates Session is switched to the agreement of another antenna/base station from an antenna/base station.
In embodiments of the present invention, mobile device 260 includes FA (Foreign Agent) 265, FA 265 can register to HA 150 to access home network 100.According to the present invention, logical Cross SG 225, mobile device 260 FA 265 and home network 100 HA 150 it Between set up safe communication path or passage.This process be will be explained in further detail now.
Fig. 3 shows the flow chart of the method 300 according to an embodiment of the invention. Assuming to perform assembly necessary to the method in beginning is available and can be according to the present invention Operate.Then when HA receives registration request, this process starts (step 305).Root According to the present invention, this registration request initiates the registration process for mobile device, thus it can be from Remote location accesses home network.In this embodiment, it is necessary to complete this from not remote position Registration process, the i.e. simultaneously element of mobile device actually home network or be connected directly Element to home network.
Such as, mobile device can be directly connected to HA via USB connection or be connected to PC as the element being in identical home network with HA.At mobile device and HA Between short-range wireless protocol such as WiFi can also be used to connect, or Femto cell net RAN agreement in network.It should be apparent that home network is preferably used local password, close Key or cryptographic protocol avoid enough near-earths to carry out operating directly communicating with this home network Hacker registers.
In the embodiment of fig. 3, the UID of movement station FA is then passed to HA (step , and be stored in suitable memory devices rapid 310).Also transmit the pair of FA certificate This (step 315).Then HA is preserved for the address (step 320) of FA.This IP Address will be the virtual ip address used by FA when being entered in home network by tunnel.? In one embodiment, when one group of home network IP address of initial offer, HA is for this purpose Receive this address.In another embodiment, HA can such as by with on RG Dynamic Host Configuration Protocol server communicates, the establishment of each FA request address being registered with.
In the embodiment of fig. 3, to the UID (step 325) of FA transmission HA, and And in most cases, also transmit the copy (step 330) of HA certificate.So Just have registered FA, in order to access home network from remote location.Will be explained in further detail now This process.
Fig. 4 shows the flow chart of the method 400 according to an embodiment of the invention. Assuming to perform assembly necessary to the method in beginning is available and can be according to the present invention Operate.Then when HA sends registration message to SG, this process starts (step 405). This registration message will include the UID of HA.As it has been described above, many home networks are by NAT The protection on border.In many cases, the unsolicited message from FA will not pass through RG biography Pass.The present invention allows home network to keep NAT border, simultaneously facilitates mandate mobile device and leads to Cross NAT border to access.
In this embodiment, after sending (and receiving in SG) registration message, Perform authentication protocol (step 410).In a preferred embodiment, this certification include HA with Two-way certification authentication between SG, from trusted parties, (such as common root or intermediate certificate are issued in utilization Send out mechanism) PKI that obtains and certificate template.Further preferably the most arbitrarily demonstrate,prove for crl checking Book issuing organization is invaded.Use two-way certification authentication will avoid must providing still to SG HA or Additional servers.However, it should provide SG on local agent in a secured manner Shared virtual ip address.Definite program for checking will depend in some extent How HA disposed and manage, if not and being expressly recited no in a specific embodiment Then the present invention need not concrete authentication method.
In the embodiment illustrated in fig. 4, after successfully completing authentication procedure, HA receives Accreditation verification (step 415).It is assumed here that registration process is not successfully complete;If Not success, then HA can attempt again registering or notify user's (not shown), as Desired by implementing.If HA is managed device, then it can notify equipment Manager registers unsuccessful (also not showing).But will until completing to register method 400 Will not advance.
In this embodiment, after confirming successful registration, HA initiates registration heart beating (step Rapid 420).The periodic sequence of the TCP packet that this heart beating preferably sends to SG from HA, To guarantee safeguarding this TCP flow in the NAT table of home network.Each heart beating is disappeared Breath, HA expectation receives confirmation (step 425).If this occurs, then this process is simple Be continued until by any one equipment terminate registration till (not shown).If HA does not has Receive the confirmation for specific heartbeat message, then this process returns to step 405 and again Initiate registration process.
Certainly, this assumes to remain desirable to registration.If being not intended to remote mobile for some reason Equipment accesses, and the most naturally need not permanent maintenance of HA and registers.Such as, if it have detected that Problem and subscriber or true for managing the equipment manager (if applicable words) of this HA Surely should hang up this access until this problem be solved, then this it may happen that.It should be noted that If it is necessary that register HA with new SG, then can preferably transmit existing registration and (not show Show) rather than simply terminate this registration and force HA to re-register to new SG.Also It should be noted that for some operations to bandwidth sensitive, the link set up by SG can be passed It is delivered to PS (also not showing).In this case, this registration is the most transferable.
Fig. 5 shows the flow chart of the method 500 according to an embodiment of the invention. When starting, assembly necessary to hypothesis execution the method is available and can be according to the present invention Operate.It is further assumed that the HA in home network (is such as embodied in mobile device to FA In FA) accessible SG registration.Then, when HA receive request with initiate HA with During communication session between FA, this process starts (step 505).When such as using embodiment FA The mobile subscriber of equipment desire access to home network in case obtain stored therein interior perhaps Person performs some and controls or during function for monitoring, this it may happen that.Typically, will connect from SG Receive the request from the FA in remote-moving apparatus, wherein contacted this SG to connect by FA HA.But in some interchangeable embodiments, access request can come from home network In self or from another external network element.
In the embodiment illustrated in fig. 4, HA the most such as according to the registration process shown in Fig. 3, Checking registers this FA (step 510) to HA.If correctly do not register FA to HA, Then refuse this communication session request (step 515).It may alternatively send message (step Rapid 520) to notify that to SG the access of home network will be not allowed to.This message can be wrapped Include the unaccepted reason of access or be included in the invitation that later time retries.It is assumed that SG Refuse information will be forwarded to FA or change into generating similar message for transmission (not shown).
In this embodiment, if correctly have registered FA, then this HA determines (step 525) which should allow access (if present) for this concrete FA.It should be noted that It is made without between FA distinguishing, concrete FA is not limited to incomplete home network and connects Enter.But implementation when wishing with the presence of this.HA also determines that (step 530) can answer Which bandwidth to limit (if present) by.Such as, user may wish to remote mobile Equipment upload multimedia presents, but this is likely to be due to current service conditions or by home network Or access network apply restriction and be not allowed to.In a preferred embodiment, step 530 is really Surely include that receiving applicable bandwidth from SG limits.
In the embodiment illustrated in fig. 4, HA is then according to the access request received with in step The restriction (if present) that 525 and 530 determine, it is allowed to access (step 535).At HA And set up secure tunnel between SG, by this secure tunnel and built between SG and FA Vertical tunnel is linked, and sets up the peace for being accessed home network by FA by which Full communication session.It should be noted that the heartbeat message preferably continued between HA and SG and confirmation (see Fig. 4), thus communication session is not surprisingly terminated.
Returning Fig. 4, this communication session is continued until (step 540) till being terminated.Work as example When being no longer necessary to be linked into home network such as mobile device, can be with executive termination.Terminate other Reason can include initiating getting rid of access higher priority communication, find safety problem or pre- Restriction of fixing time expires.Such as can be desired with similar access by must be accommodated in the identical time The access network of many users apply this restriction.Home network can be accessed as being used for subscriber The factor that considers of speed plan, and can be according to the restriction termination meeting applied by speed plan Words.
It should be noted that the order of the operation above with reference to given by Fig. 3 to Fig. 5 is exemplary, And the invention is not restricted to illustrated embodiment.Additional operation can be increased, or at some Situation can be removed additional operation, without departing from the spirit of the present invention.Furthermore it is possible to Operation according to the method shown in the most consistent order execution.
Fig. 6 shows the selected assembly of the HA 600 according to an embodiment of the invention Rough schematic view.In this embodiment, HA 600 includes for controlling in HA 600 The processor 605 of other assemblies and memory devices 610, memory devices 610 storage is used In both data and the programmed instruction that control HA 600.Memory devices as used herein Implicit physics non-transient state device.Individually show UID memory devices 615, UID memorizer Equipment 615 for storing HA's the most in an encrypted form when obtaining the UID of HA UID.FA registration table 620 is safeguarded to the registration of the FA of HA 600 registration, including them Respective UID and certification certificate.FA registration table 620 can also store can be applicable to each The access of registration FA limits or privilege (if present).SG ground safeguarded by SG table 625 Location and the registration of safety information, in order to SG is to register in contact, and when licensing remote connects Fashionable foundation is for the secure tunnel of remote-moving apparatus communication session.
In this embodiment, HA 600 also includes connecing for the network plugged into home network Mouthfuls 630 and for plugging into carrying out inquiring about and receive the user for the specification of HA operation User interface 635.For this purpose it is proposed, user interface 635 may be connected to such as keyboard and Indicator screen.Heart beating maker 640 generates heartbeat message to maintain HA 600 upon registration And the TCP flow between SG.
It should be noted that HA 600 is an exemplary embodiment, and other of the present invention Embodiment is feasible.For example, it is possible in other embodiments by some of HA 600 Assembly is combined, or segments the most further.Furthermore it is possible to will HA 600 realizes in independent physical equipment or is merged in other network elements, The such as PC 110 or RG 105 shown in Fig. 1.
In this way, the present invention is easy to by the remote mobile of the FA having to HA registration Equipment is linked into the home network using this HA.Safety can be set up between FA and SG Tunnel, and if access be allowed to, then by this secure tunnel and build between HA and SG Vertical tunnel link.
Although having been illustrated with in the accompanying drawings and detailed description above having been described with Multiple embodiments of the present invention, it should be appreciated that the invention is not restricted to disclosed embodiment party Formula, but without departing from as set forth in the appended claims and the premise of the present invention that defines Under, it is possible to carry out heavily joining, revise and replacing in a large number.

Claims (13)

1. one kind is to include that the mobile device of FA (Foreign Agent) provides to include HA (this Ground agency) the method remotely accessed of home network, described method includes:
Obtain the UID (unique identifier) in described HA;
The SG (SGW) accessible to described FA registers the described of described home network HA, wherein registration includes sending registration message from described HA to described SG, and described registration disappears Breath includes described UID;
Initiate from described HA to the heart beating of described SG.
Method the most according to claim 1, is wherein generated described UID by described HA.
Method the most according to claim 1, wherein connects from described SG in described HA Receive described UID.
Method the most according to claim 1, also includes registering described FA to described HA.
Method the most according to claim 4, wherein not remote ground performs described FA registration.
Method the most according to claim 4, wherein registers described FA bag to described HA Include:
FA UID is transmitted to described HA;
Described HA UID is transmitted to described FA;And
The address of described FA it is preserved in described HA.
Method the most according to claim 6, wherein registers described FA also to described HA Including:
FA certificate is transmitted to described HA;And
HA certificate is transmitted to described FA.
Method the most according to claim 1, also includes:
FA access request is received from SG;
Determine whether that described HA have registered described FA;And
If not registering described FA to described HA, then refuse described access request.
Method the most according to claim 8, also includes:
If have registered described FA to described HA, then permit to access.
Method the most according to claim 8, also includes:
Determine that described FA can be licensed the degree accessing described home network.
11. methods according to claim 9, also include:
Limit if there is any bandwidth, it is determined that can be applicable to from described home network to described The bandwidth uploaded of HA limits.
12. methods according to claim 11, also include:
If have registered described FA to described HA, then extend the deadline in any access determined or band Under conditions of system, access is permitted.
13. methods according to claim 1, also include:
Confirm, then from described HA to described without receiving the expectation for heartbeat message SG sends registration message.
CN201180015395.7A 2010-03-23 2011-03-18 The method and apparatus accessed for local network Active CN102812773B (en)

Applications Claiming Priority (5)

Application Number Priority Date Filing Date Title
US31655310P 2010-03-23 2010-03-23
US61/316,553 2010-03-23
US12/985,730 US8572246B2 (en) 2010-03-23 2011-01-06 Method and apparatus for home network access
US12/985,730 2011-01-06
PCT/US2011/029028 WO2011119435A1 (en) 2010-03-23 2011-03-18 Method and apparatus for home network access

Publications (2)

Publication Number Publication Date
CN102812773A CN102812773A (en) 2012-12-05
CN102812773B true CN102812773B (en) 2016-08-17

Family

ID=44656412

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201180015395.7A Active CN102812773B (en) 2010-03-23 2011-03-18 The method and apparatus accessed for local network

Country Status (4)

Country Link
US (2) US8572246B2 (en)
EP (1) EP2550836B1 (en)
CN (1) CN102812773B (en)
WO (1) WO2011119435A1 (en)

Families Citing this family (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20130003653A1 (en) * 2011-06-30 2013-01-03 Alcatel-Lucent Usa Inc. Method And Apparatus For Facilitating Home Network Access
AU2012345724B2 (en) * 2011-11-30 2016-10-06 Ulterius Technologies, Llc DVR module for system having a gateway
CN103442224A (en) * 2013-09-09 2013-12-11 杭州巨峰科技有限公司 NAT penetration-based video monitoring access strategy and realization method

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2008078633A1 (en) * 2006-12-27 2008-07-03 Panasonic Corporation Communication system, domain managing device, edge device and mobile terminal device
US20100054133A1 (en) * 2007-03-05 2010-03-04 Panasonic Corporation Loop Detection For Mobile IP Home Agents

Family Cites Families (14)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6560217B1 (en) * 1999-02-25 2003-05-06 3Com Corporation Virtual home agent service using software-replicated home agents
US6711147B1 (en) * 1999-04-01 2004-03-23 Nortel Networks Limited Merged packet service and mobile internet protocol
JP4724928B2 (en) * 2001-02-27 2011-07-13 ソニー株式会社 Wireless transmission apparatus and wireless transmission method
US7173905B1 (en) * 2001-08-02 2007-02-06 Utstarcom, Inc. PDSN fast tunnel lookup
JP4804672B2 (en) * 2001-08-29 2011-11-02 富士通株式会社 Mobile IP network system
US7818409B2 (en) * 2002-01-22 2010-10-19 Alcatel-Lucent Usa Inc. Dynamic virtual private network system and methods
US20040109459A1 (en) * 2002-07-25 2004-06-10 Lila Madour Packet filter provisioning to a packet data access node
JP2005020286A (en) * 2003-06-25 2005-01-20 Matsushita Electric Ind Co Ltd Network management device, portable terminal, network system and communication method using the same
US20060155850A1 (en) * 2003-11-25 2006-07-13 Matsushita Electric Industrial Co., Ltd. Networked mobile EPG service architecture
EP1712058A1 (en) * 2004-02-06 2006-10-18 Telecom Italia S.p.A. Method and system for the secure and transparent provision of mobile ip services in an aaa environment
JP2007067713A (en) * 2005-08-30 2007-03-15 Fujitsu Ltd Home agent and mobile node
US7680123B2 (en) * 2006-01-17 2010-03-16 Qualcomm Incorporated Mobile terminated packet data call setup without dormancy
US8346225B2 (en) * 2009-01-28 2013-01-01 Headwater Partners I, Llc Quality of service for device assisted services
CA2742609A1 (en) * 2008-11-26 2010-06-03 Telefonaktiebolaget L M Ericsson (Publ) Queuing mechanisms for lte access and sae networks enabling end-to-end ims based priority service

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2008078633A1 (en) * 2006-12-27 2008-07-03 Panasonic Corporation Communication system, domain managing device, edge device and mobile terminal device
US20100054133A1 (en) * 2007-03-05 2010-03-04 Panasonic Corporation Loop Detection For Mobile IP Home Agents

Also Published As

Publication number Publication date
WO2011119435A1 (en) 2011-09-29
EP2550836A1 (en) 2013-01-30
US8572246B2 (en) 2013-10-29
CN102812773A (en) 2012-12-05
US20110235579A1 (en) 2011-09-29
US20110238833A1 (en) 2011-09-29
EP2550836B1 (en) 2015-12-30

Similar Documents

Publication Publication Date Title
EP1679843B1 (en) Security group management system
US8954741B2 (en) Apparatus and method for supporting family cloud in cloud computing system
CN102137395B (en) Method, device and system for configuring access device
KR100494558B1 (en) The method and system for performing authentification to obtain access to public wireless LAN
US9241001B2 (en) Method and apparatus for providing service using personal network
US7370112B2 (en) Communication scheme using outside DTCP bridge for realizing copyright protection
US20060173846A1 (en) Access information relay device, a network device, an access information managing device, a resource managing device, and an access control system
CN103503378B (en) For the method and apparatus accessed by the home network of credible monitoring agent
US20120331286A1 (en) Apparatus and method for providing service to heterogeneous service terminals
EP2547133B1 (en) Method and equipment for authenticating subscriber terminal
JP4357339B2 (en) Wireless communication system, access point, and wireless communication method
JP2010510568A (en) Resource transmission method and information providing method
CN102812773B (en) The method and apparatus accessed for local network
KR101969165B1 (en) System and Method for Managing Home Network Based on Wallpad
CN102075567B (en) Authentication method, client, server, feedthrough server and authentication system
CN102883265A (en) Method, equipment and system for sending and receiving position information of access user
KR101709159B1 (en) A method for service wireless data communication using IP and an apparatus thereof
US20130086218A1 (en) Proxy Server For Home Network Access
JP2006121728A (en) Communication system, mobile terminal device, gateway device, and communication control method
JP2011239152A (en) Wireless communication system and terminal management method
US20130003653A1 (en) Method And Apparatus For Facilitating Home Network Access
KR101719295B1 (en) Messaging service system and method thereof
JP2005142842A (en) Access managing system and access manager
JP2011019125A (en) Communication controller, communication control method and communication control program
JP2015031989A (en) Software module execution equipment and software module execution program

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant